π [ Tyl0us, Matt Eidelberg ]
Check out my talk focusing on shining a light on the mindset of a red team and how they covertly compromise an organizationβs security. Lots of great TTPs and stories to share check it out #SourceZeroCon https://t.co/FiiVCJhi0t #netsec #redteam #evasion
π http://bit.ly/3K3argl
π₯ [ tweet ]
Check out my talk focusing on shining a light on the mindset of a red team and how they covertly compromise an organizationβs security. Lots of great TTPs and stories to share check it out #SourceZeroCon https://t.co/FiiVCJhi0t #netsec #redteam #evasion
π http://bit.ly/3K3argl
π₯ [ tweet ]
π [ Tyl0us, Matt Eidelberg ]
Small update to ScareCrow. Shoutout to @mariuszbit for the feature request. Check it out: https://t.co/VIQVnKd2tJ
#netsec #redteam #EDR #evasion
π https://github.com/optiv/ScareCrow
π₯ [ tweet ]
Small update to ScareCrow. Shoutout to @mariuszbit for the feature request. Check it out: https://t.co/VIQVnKd2tJ
#netsec #redteam #EDR #evasion
π https://github.com/optiv/ScareCrow
π₯ [ tweet ]
π1
π [ Tyl0us, Matt Eidelberg ]
Seeing the crazy stuff people on my team do always inspires me. In this case, I am talking about @garrfoster for coming up with this amazing DACL parser for Active Directory. This is π₯! Check it out: https://t.co/SkkWfrVIYl #netsec #redteam
π https://github.com/garrettfoster13/aced
π₯ [ tweet ]
Seeing the crazy stuff people on my team do always inspires me. In this case, I am talking about @garrfoster for coming up with this amazing DACL parser for Active Directory. This is π₯! Check it out: https://t.co/SkkWfrVIYl #netsec #redteam
π https://github.com/garrettfoster13/aced
π₯ [ tweet ]
π1
π [ Tyl0us, Matt Eidelberg ]
Mangle is a tool that manipulates aspects of compiled PEs to avoid detection from EDRs. It can strip out IoCs and inflate files to avoid detection and more. Check it out https://t.co/lpQCrDGnd1 #netsec #redteam #evasion
π https://github.com/optiv/Mangle
π₯ [ tweet ]
Mangle is a tool that manipulates aspects of compiled PEs to avoid detection from EDRs. It can strip out IoCs and inflate files to avoid detection and more. Check it out https://t.co/lpQCrDGnd1 #netsec #redteam #evasion
π https://github.com/optiv/Mangle
π₯ [ tweet ]
π₯1
π [ Tyl0us, Matt Eidelberg ]
New Tool - Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods. Check it out: https://t.co/hjB7aXqVhy
#netsec #redteam #EDR #evasion
π https://github.com/optiv/Freeze
π₯ [ tweet ]
New Tool - Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods. Check it out: https://t.co/hjB7aXqVhy
#netsec #redteam #EDR #evasion
π https://github.com/optiv/Freeze
π₯ [ tweet ]
π [ Tyl0us, Matt Eidelberg ]
ScareCrow 5.0 is out now, a massive rewrite of the framework with huge new features, IoC's removed & new evasion techniques added. If you are curious take a look at the changelog. Check it out: https://t.co/VIQVnKd2tJ #netsec #redteam #EDR #evasion
π https://github.com/optiv/ScareCrow
π₯ [ tweet ]
ScareCrow 5.0 is out now, a massive rewrite of the framework with huge new features, IoC's removed & new evasion techniques added. If you are curious take a look at the changelog. Check it out: https://t.co/VIQVnKd2tJ #netsec #redteam #EDR #evasion
π https://github.com/optiv/ScareCrow
π₯ [ tweet ]
π [ Matt Eidelberg @Tyl0us ]
Long overdue but SourcePoint v3.0 is out now, with a ton of new features and bug fixes. With these changes, Initial access and Post-Ex activities with CobaltStrike can fly under the radar.
Check it out !
#redteam #netsec
π https://github.com/Tylous/SourcePoint/releases/tag/v3.0
π₯ [ tweet ]
Long overdue but SourcePoint v3.0 is out now, with a ton of new features and bug fixes. With these changes, Initial access and Post-Ex activities with CobaltStrike can fly under the radar.
Check it out !
#redteam #netsec
π https://github.com/Tylous/SourcePoint/releases/tag/v3.0
π₯ [ tweet ]
π₯5